CVE-2024-29039

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-29039
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-29039.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-29039
Aliases
  • GHSA-8rjm-5f5f-h4q6
Downstream
Related
Published
2024-06-28T15:48:25Z
Modified
2025-11-06T01:18:26.159911Z
Severity
  • 9.0 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS Calculator
Summary
Missing check in tpm2_checkquote allows attackers to misrepresent the TPM state
Details

tpm2 is the source repository for the Trusted Platform Module (TPM2.0) tools. This vulnerability allows attackers to manipulate tpm2checkquote outputs by altering the TPMLPCR_SELECTION in the PCR input file. As a result, digest values are incorrectly mapped to PCR slots and banks, providing a misleading picture of the TPM state. This issue has been patched in version 5.7.

Database specific 
{
    "cwe_ids": [
        "CWE-807"
    ]
}
References

Affected packages

Git / github.com/tpm2-software/tpm2-tools

Affected ranges

Type
GIT
Repo
https://github.com/tpm2-software/tpm2-tools
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
c6e182cf690ca0022b77fe7d3c174659917a7e7e

Affected versions

2.*

2.0.0
2.0.0-beta_0

3.*

3.0
3.0-rc0
3.0-rc1
3.0-rc2
3.0.1
3.0.2

4.*

4.0
4.0-rc0
4.0-rc1
4.0-rc2
4.1
4.1-rc0
4.1-rc1
4.1.1
4.1.1-RC0
4.1.1-RC1
4.1.2
4.1.2-rc0
4.1.3
4.1.3-rc0
4.2
4.2-RC0
4.2-rc1
4.2.1
4.2.1-rc0
4.2.1-rc1
4.3.0
4.3.0-rc0
4.3.0-rc1

5.*

5.0
5.0-rc0
5.1
5.1-rc0
5.1-rc1
5.1.1
5.1.1-rc0
5.2
5.2-rc0
5.3
5.3-rc0
5.3-rc1
5.4
5.4-rc0
5.5
5.5-rc0
5.5-rc1
5.6
5.6-rc0
5.7-rc0
5.7-rc1

Other

ajay-kish-pub

v1.*

v1.0.0
v1.0.1
v1.1-beta_0
v1.1-beta_1
v1.1.0